Defining SLO service URLs (SAML 2.0)
On the SLO Service URLs tab, associate bindings to the endpoints where your identity provider (IdP) receives logout requests when single logout (SLO) is initiated at your site and where PingFederate sends SLO responses when it receives SLO requests from the IdP.
About this task
This process only applies to SAML 2.0 connections when either SLO profile is selected on the SAML Profiles tab.
Steps
-
Go to Applications → Integrations → SP Connections.
-
Click on any SAML 2.0 connection, and then click the Browser SSO tab.
-
Click Configure Browser SSO, and then click the SAML Profiles tab.
-
Select a SAML binding from the list; for example, POST.
-
Enter the SLO endpoint URL in the Endpoint URL field.
You can enter a relative path, starting with a forward slash, if you have provided a base URL on the General Info tab.
-
Optional: Enter a URL in the Response URL field.
When specified, it is the location where SLO logout response messages are sent based on your partner agreement. When omitted, PingFederate sends logout responses to the SLO endpoint URL.
You can enter a relative path, starting with a forward slash, if you have provided a base URL on the General Info tab.
-
Click Add.
-
Optional: Repeat to add additional SLO endpoints.
Result
If you are editing an existing connection, you can reconfigure the SLO endpoints, which might require additional configuration changes in subsequent tasks.